Design decisions in the development of a graphical language for risk-driven security testing
Journal article, Peer reviewed
Accepted version
Date
2017Metadata
Show full item recordCollections
- Publikasjoner fra CRIStin - SINTEF AS [5583]
- SINTEF Digital [2379]
Abstract
We have developed a domain-specific modeling language named CORAL that employs risk assessment to help security testers select and design test cases based on the available risk picture. In this paper, we present CORAL and then discuss why the language is designed the way it is, and what we could have done differently.